Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/84596?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/84596?format=api", "purl": "pkg:ebuild/media-libs/libpng@1.2.21-r3", "type": "ebuild", "namespace": "media-libs", "name": "libpng", "version": "1.2.21-r3", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "1.2.26-r1", "latest_non_vulnerable_version": "1.6.51", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34261?format=api", "vulnerability_id": "VCID-2nvs-t3tu-6qb5", "summary": "Multiple vulnerabilities have been found in VMware Player, Server,\n and Workstation, allowing remote and local attackers to conduct several\n attacks, including privilege escalation, remote execution of arbitrary\n code, and a Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5269.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5269.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5269", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05422", "scoring_system": "epss", "scoring_elements": "0.90175", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05422", "scoring_system": "epss", "scoring_elements": "0.90172", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.08043", "scoring_system": "epss", "scoring_elements": "0.92102", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.08043", "scoring_system": "epss", "scoring_elements": "0.92106", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.08043", "scoring_system": "epss", "scoring_elements": "0.92118", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.08043", "scoring_system": "epss", "scoring_elements": "0.92088", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.08043", "scoring_system": "epss", "scoring_elements": "0.92125", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.08043", "scoring_system": "epss", "scoring_elements": "0.92132", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.08043", "scoring_system": "epss", "scoring_elements": "0.92121", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.08043", "scoring_system": "epss", "scoring_elements": "0.92095", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5269" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=324771", "reference_id": "324771", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=324771" }, { "reference_url": "https://security.gentoo.org/glsa/200711-08", "reference_id": "GLSA-200711-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200711-08" }, { "reference_url": "https://security.gentoo.org/glsa/201209-25", "reference_id": "GLSA-201209-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-25" }, { "reference_url": "https://security.gentoo.org/glsa/201412-11", "reference_id": "GLSA-201412-11", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201412-11" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0992", "reference_id": "RHSA-2007:0992", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0992" }, { "reference_url": "https://usn.ubuntu.com/538-1/", "reference_id": "USN-538-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/538-1/" }, { "reference_url": "https://usn.ubuntu.com/730-1/", "reference_id": "USN-730-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/730-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/84596?format=api", "purl": "pkg:ebuild/media-libs/libpng@1.2.21-r3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.21-r3" } ], "aliases": [ "CVE-2007-5269" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2nvs-t3tu-6qb5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56195?format=api", "vulnerability_id": "VCID-3vte-bsf9-cyh7", "summary": "Multiple vulnerabilities have been found in AMD64 x86 emulation\n base libraries, the worst of which may allow remote execution of arbitrary\n code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5266.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5266.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5266", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.11784", "scoring_system": "epss", "scoring_elements": "0.93729", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.11784", "scoring_system": "epss", "scoring_elements": "0.93732", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94038", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94041", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94049", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94017", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94058", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94057", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94073", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94053", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.12913", "scoring_system": "epss", "scoring_elements": "0.94027", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5266" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=324711", "reference_id": "324711", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=324711" }, { "reference_url": "https://security.gentoo.org/glsa/200711-08", "reference_id": "GLSA-200711-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200711-08" }, { "reference_url": "https://security.gentoo.org/glsa/201412-11", "reference_id": "GLSA-201412-11", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201412-11" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/84596?format=api", "purl": "pkg:ebuild/media-libs/libpng@1.2.21-r3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.21-r3" } ], "aliases": [ "CVE-2007-5266" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3vte-bsf9-cyh7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56196?format=api", "vulnerability_id": "VCID-xyfm-qdqz-93dy", "summary": "Multiple vulnerabilities have been found in AMD64 x86 emulation\n base libraries, the worst of which may allow remote execution of arbitrary\n code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5268.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5268.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5268", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.93709", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.93718", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.93728", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.93731", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.9374", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.93743", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.93747", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.93748", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.11915", "scoring_system": "epss", "scoring_elements": "0.93769", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.13699", "scoring_system": "epss", "scoring_elements": "0.94281", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5268" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=324751", "reference_id": "324751", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=324751" }, { "reference_url": "https://security.gentoo.org/glsa/200711-08", "reference_id": "GLSA-200711-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200711-08" }, { "reference_url": "https://security.gentoo.org/glsa/201412-11", "reference_id": "GLSA-201412-11", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201412-11" }, { "reference_url": "https://usn.ubuntu.com/538-1/", "reference_id": "USN-538-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/538-1/" }, { "reference_url": "https://usn.ubuntu.com/730-1/", "reference_id": "USN-730-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/730-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/84596?format=api", "purl": "pkg:ebuild/media-libs/libpng@1.2.21-r3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.21-r3" } ], "aliases": [ "CVE-2007-5268" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xyfm-qdqz-93dy" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.21-r3" }